Your data is safe.
That's not negotiable.
CloudLab is designed for HIPAA compliance from the ground up. We protect patient data with the same standards used by hospitals and health systems.
HIPAA Compliant
Full HIPAA compliance with administrative, physical, and technical safeguards. Business Associate Agreements (BAA) available for all customers.
256-bit AES Encryption
All data encrypted at rest using AES-256. Sensitive fields like API keys and OAuth tokens use application-level encryption with per-tenant keys.
TLS 1.3 in Transit
All data transmitted over TLS 1.3 with modern cipher suites. Strict HSTS headers enforced across all endpoints.
AWS US Infrastructure
Hosted exclusively on AWS US regions. RDS for database, S3 for file storage, CloudFront for delivery. No data leaves US borders.
Multi-Tenant Isolation
Complete data isolation between laboratories. Every database query is automatically scoped to the current tenant. No cross-tenant data access.
Audit Logging
Comprehensive audit trail for all data access and modifications. Role-based access control (RBAC) with granular permissions.
Questions about security?
We take security seriously. If you have questions about our security practices, need a BAA, or want to discuss compliance requirements, reach out to us.
Contact Us